Resident Pulser@infosec.pubB to Pulse of Truth@infosec.pubEnglish · 2 months agoMis-issued certificates for 1.1.1.1 DNS service pose a threat to the Internetarstechnica.comexternal-linkmessage-square1linkfedilinkarrow-up110arrow-down10file-textcross-posted to: [email protected][email protected]
arrow-up110arrow-down1external-linkMis-issued certificates for 1.1.1.1 DNS service pose a threat to the Internetarstechnica.comResident Pulser@infosec.pubB to Pulse of Truth@infosec.pubEnglish · 2 months agomessage-square1linkfedilinkfile-textcross-posted to: [email protected][email protected]
minus-squaretheit8514linkfedilinkEnglisharrow-up2·2 months agoVery interesting, considering one.one.one has DNS CAA configured. I wonder if that works for their DNS over TLS certs. Those have to be signed by IP, right?
Very interesting, considering one.one.one has DNS CAA configured. I wonder if that works for their DNS over TLS certs. Those have to be signed by IP, right?